davisjam / vuln-regex-detector

Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.
MIT License
320 stars 28 forks source link

bin scripts should have good defaults for detector limits #8

Closed davisjam closed 6 years ago

davisjam commented 6 years ago

Some regex in the npm project's github repo (see #6) causes Weideman to hang:

12118 jamie     20   0 7024648 1.645g  16540 S *100.3 10.6  14:30.92* java                                                                                                 

15 minutes and 10% of RAM. Not good.

Can we set default time and memory limits for the detectors in the bin/ scripts?